JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.108.21.228

213.108.21.228 was found in our database!

This IP was reported 104 times. Confidence of Abuse is 0%: ?

ISP	AEZA GROUP LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210644
Domain Name	aeza.ru
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.108.21.228

Whois 213.108.21.228

IP Abuse Reports for 213.108.21.228:

This IP address has been reported a total of 104 times from 71 distinct sources. 213.108.21.228 was first reported on March 21st 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-01 06:17:05 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=94, sources=1)	Hacking Brute-Force SSH
🇩🇪 ghostwarriors	2026-04-01 00:55:47 (2 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2026-03-28 20:12:18 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2026-03-24 20:12:15 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇦🇹 urnilxfgbez	2026-03-23 23:45:00 (3 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇮 tjs	2026-03-23 21:30:00 (3 months ago)	web attack, shell attempt	Hacking Web App Attack
🇳🇱 f14driver	2026-03-23 07:10:44 (3 months ago)	...	Brute-Force SSH Port Scan Web App Attack
🇺🇸 bigscoots.com	2026-03-23 06:02:29 (3 months ago)	(sshd) Failed SSH login from 213.108.21.228 (NL/The Netherlands/diplomaticgold.ptr.network): 5 in th ... show more (sshd) Failed SSH login from 213.108.21.228 (NL/The Netherlands/diplomaticgold.ptr.network): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Mar 23 06:01:45 22091 sshd[25978]: Invalid user admin from 213.108.21.228 port 45898 Mar 23 06:01:47 22091 sshd[25978]: Failed password for invalid user admin from 213.108.21.228 port 45898 ssh2 Mar 23 06:01:49 22091 sshd[25980]: Invalid user admin from 213.108.21.228 port 57872 Mar 23 06:01:51 22091 sshd[25980]: Failed password for invalid user admin from 213.108.21.228 port 57872 ssh2 Mar 23 06:02:18 22091 sshd[26047]: Invalid user orangepi from 213.108.21.228 port 45992 show less	Brute-Force SSH
🇫🇷 vtchost.com	2026-03-23 05:53:30 (3 months ago)	minux.cc:80 213.108.21.228 - - [23/Mar/2026:06:53:30 +0100] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/ ... show more minux.cc:80 213.108.21.228 - - [23/Mar/2026:06:53:30 +0100] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 456 "-" "libredtail-http" ... show less	Web App Attack
🇩🇪 tg_de	2026-03-23 05:52:20 (3 months ago)	44 attempts since 23.03.2026 06:52:18 CET - last search for: /containers/json	Web App Attack
🇺🇸 xmission.com	2026-03-23 05:23:59 (3 months ago)	Blocked by UFW (TCP on 2222) Source port: 54968 TTL: 41 Packet length: 40 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 2222) Source port: 54968 TTL: 41 Packet length: 40 TOS: 0x08 This report (for 213.108.21.228) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-03-23 04:42:05 (3 months ago)	Blocked by UFW (TCP on 443) Source port: 58550 TTL: 50 Packet length: 40 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 443) Source port: 58550 TTL: 50 Packet length: 40 TOS: 0x00 This report (for 213.108.21.228) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
Anonymous	2026-03-23 04:25:06 (3 months ago)	Bot / scanning and/or hacking attempts: POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepe ... show more Bot / scanning and/or hacking attempts: POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_, POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32, POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e show less	Hacking Web App Attack
🇹🇷 rtbh.com.tr	2026-03-23 04:12:12 (3 months ago)	list.rtbh.com.tr report: tcp/23	Brute-Force
🇸🇪 EmK530	2026-03-23 02:59:05 (3 months ago)	URL flagged by RegEx: /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	Web App Attack

Showing 1 to 15 of 104 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 101.89.141.184

🇺🇸 216.73.216.43

🇱🇹 78.63.243.40

🇨🇳 202.168.163.132

🇨🇳 101.76.248.214

🇷🇴 80.94.92.120

🇳🇱 45.148.10.151

🇳🇴 2620:171:d5:0:9999::106

🇰🇷 223.194.21.240

🇺🇸 216.73.216.26

🇧🇷 209.14.89.9

🇭🇰 185.242.232.164

🇺🇸 162.216.149.105

🇫🇷 91.196.152.179

🇬🇧 2a06:4880:c000::e6

🇳🇱 176.65.131.215

🇺🇸 100.29.192.81

🇳🇱 45.148.10.141

🇨🇳 218.93.20.6

🇨🇳 123.145.13.247